AI Bellwethers in the US and EU
Hello all, and thanks for reading today.
Read NowGet an overview of the simple, all-in-one data privacy platform
Manage consent for data privacy laws in 50+ countries
Streamline and automate the DSAR workflow
Efficiently manage assessment workflows using custom or pre-built templates
Streamline consent, utilize non-cookie data, and enhance customer trust
Automate and visualize data store discovery and classification
Ensure your customers’ data is in good hands
Key Features & Integrations
Discover how Osano supports CPRA compliance
Learn about the CCPA and how Osano can help
Achieve compliance with one of the world’s most comprehensive data privacy laws
Key resources on all things data privacy
Expert insights on all things privacy
Key resources to further your data privacy education
Meet some of the 5,000+ leaders using Osano to transform their privacy programs
A guide to data privacy in the U.S.
What's the latest from Osano?
Data privacy is complex but you're not alone
Join our weekly newsletter with over 35,000 subscribers
Global experts share insights and compelling personal stories about the critical importance of data privacy
Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start a privacy program
Upcoming webinars and in-person events designed for privacy professionals
The Osano story
Become an Osanian and help us build the future of privacy!
We’re eager to hear from you
Published: November 17, 2020
Welcome to the latest edition of the Privacy Insider Newsletter. Each week, we send you the latest and smartest news in the world of data privacy.
Here are the top stories you might have missed:
European Commission releases draft of acceptable SCCs
The European Commission has released a draft set of new standard contractual clauses and a “draft implementing decision,” National Law Review Reports. The news follows the invalidation of the EU/U.S. Privacy Shield agreement earlier this year. The draft release, which allows for two types of data transfers, does not completely align with guidance released by the European Data Protection Board on its own expectations for data transfers, the report states, and will now face public consultation, as well as review by both the EDPB and the European Data Protection Supervisor.
Read Story
2. Court slashes German telecom’s GDPR fine
A German telecom company that had been fined 9.55 million euros for a breach of the EU General Data Protection Regulation will now pay just 900,000 euros. In 2019, German Federal Commissioner for Data Protection and Freedom of Information accused company 1&1 of “failing to comply with technical and organizational measures to protect personal data,” Telecompaper reports, but a German court ruled the fine was “disproportionate.”
Read Story
3. Schrems lodges complaint against Apple with two DPAs
Privacy advocate Max Schrems is making news again after his advocacy organization, NYOB, filed two new complaints, this time against Apple over its “Identifier for Advertisers,” which allows third parties to track users, TechCrunch reports. NYOB filed the complaints with the German and Spanish data protection authorities, alleging Apple’s IDFA violates privacy laws “because iOS users are not asked for their consent for the initial storage of the identifier,” the report states.
Read Story
4. ICO fines Ticketmaster UK over data breach
The U.K. Information Commissioner’s Office has fined Ticketmaster UK 1.25 pounds after a data breach exposed customers’ personal data. Following a cyberattack in 2018 affecting 1.5 million U.K. residents (and 9.4 million across Europe generally), the ICO found Ticketmaster UK “failed to keep its customers’ personal data secure,” TechRader reports. The breach included names and payment card number data.
Read Story
5. Hong Kong government launches contact-tracing app
Hong Kong released a voluntary contact-tracing app this week in an effort to thwart the spread of COVID-19. Norton Rose Fulbright’s blog reports the Hong Kong government launched the app, called LeaveHomeSafe, this week. To participate, users can scan the QR code of participating venues. Thus far, approximately 6,000 private and public venues have signed on to the effort.
Read Story
6. Delaware COVID tests leak 10,000 residents’ personal data
The Delaware Division of Public Health announced a breach involving the personal data of 10,000 Delaware residents who were tested for COVID-19. WHYY News reports the breach was detected Sept. 16 and occurred when a “temporary staff member sent two unencrypted emails in August to an unauthorized user” containing the residents’ COVID-19 test results. Those impacted are being notified by mail.
Read Story
7. Dutch privacy group pushes for investigation into Palantir
The Foundation for Market Information Research, a Dutch privacy advocacy group has called for an investigation into data analytics firm Palantir. ComputerWeekly reports that the group wants to “raise awareness about European governments’ collaboration with tech companies from outside the EU on surveillance and profiling technology.
Read Story
8. Popular children’s app breached
A gaming company that makes a popular children’s app has announced a data breach. WildWorks powers Animal Jam, one of the top-five games in Apple’s App Store in the U.S. for children ages 9-11, TechCrunch reports. According to WildWorks, the breach was uncovered in November after a hacker stole 46 million Animal Jam records, as well as 7 million parent email addresses.
Read Story
Are you in the process of refreshing your current privacy policy or building a whole new one? Are you scratching your head over what to include? Use this interactive checklist to guide you.
Download Now
Osano Staff is pseudonym used by team members when authorship may not be relevant. Osanians are a diverse team of free thinkers who enjoy working as part of a distributed team with the common goal of working to make a more transparent internet.
Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.
With Osano, building, managing, and scaling your privacy program becomes simple. Schedule a demo or try a free 30-day trial today.